Skip to content

Pull requests: github/advisory-database

New pull request New
20 Open 5,564 Closed
20 Open 5,564 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-4r6h-8v6p-xvw6] Prototype Pollution in sheetJS
#6145 opened Sep 17, 2025 by kb-med Loading…
[GHSA-5pgg-2g8v-p4x9] SheetJS Regular Expression Denial of Service (ReDoS)
#6144 opened Sep 17, 2025 by kb-med Loading…
[GHSA-29mw-wpgm-hmr9] Regular Expression Denial of Service (ReDoS) in lodash
#6139 opened Sep 15, 2025 by levpachmanov Loading…
[GHSA-x5rq-j2xg-h7qm] Regular Expression Denial of Service (ReDoS) in lodash
#6138 opened Sep 15, 2025 by levpachmanov Loading…
[GHSA-8xx5-h6m3-jr33] Presta Shop vulnerable to email enumeration
#6137 opened Sep 14, 2025 by byt3n33dl3 Loading…
7
[GHSA-q58r-hwc8-rm9j] Improper Neutralization of Input During Web Page...
#6136 opened Sep 14, 2025 by levpachmanov Loading…
fix: add credits section to GHSA-pr45-cg4x-ff4m.json
#6135 opened Sep 13, 2025 by lirantal Loading…
2
[GHSA-ph84-rcj2-fxxm] Starting in Python 3.12.0, the asyncio...
#6134 opened Sep 12, 2025 by Ortega-Dan Loading…
6
[GHSA-h44c-m38r-j8w7] Cross-Site Request Forgery (CSRF) vulnerability in Shayan...
#6096 opened Sep 7, 2025 by shayanfp Loading…
1
[GHSA-25pr-6pr6-68v7] Path traversal in atlasboard
#6094 opened Sep 7, 2025 by AryazE Loading…
1
[GHSA-pq67-2wwv-3xjx] tar-fs Vulnerable to Link Following and Path Traversal via Extracting a Crafted tar File
#6093 opened Sep 6, 2025 by AryazE Loading…
2
[GHSA-j95r-86hx-xwxg] Rank Math SEO plugin vulnerable to Server-Side Request Forgery
#6087 opened Sep 4, 2025 by yehuda-alt Loading…
1
[GHSA-wwq7-pxwc-p4rc] Improper Input Validation in Apache Axis2
#6070 opened Sep 1, 2025 by AndrzejBiernacki2010 Loading…
2
[GHSA-q4rv-gq96-w7c5] **UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate request Stale
#6047 opened Aug 26, 2025 by yeikel Loading…
2
[GHSA-6h5x-7c5m-7cr7] Exposure of Sensitive Information in eventsource Stale
#6045 opened Aug 26, 2025 by Stonefox36 Loading…
3
[GHSA-hpqf-m68j-2pfx] js-object-utilities Vulnerable to Prototype Pollution Stale
#6041 opened Aug 21, 2025 by nkhayet Loading…
3
[GHSA-w2cq-g8g3-gm83] content-security-policy-parser Prototype Pollution Vulnerability May Lead to RCE Stale
#6026 opened Aug 19, 2025 by byt3n33dl3 Loading…
6
[GHSA-q355-h244-969h] Komari vulnerable to Cross-site WebSocket Hijacking Stale
#6021 opened Aug 17, 2025 by byt3n33dl3 Loading…
8
[GHSA-6v2p-p543-phr9] golang.org/x/oauth2 Improper Validation of Syntactic Correctness of Input vulnerability
#5995 opened Aug 13, 2025 by jchax Loading…
6
[GHSA-9pp5-9c7g-4r83] Spring Security authorization bypass for method security annotations on private methods Keep
#5747 opened Jun 24, 2025 by tomabai Loading…
4
ProTip! What’s not been updated in a month: updated:<2025-08-17.